Hi all,
I am trying to set-up a static one-to-one NAT but it only seems half working, I cant quite put my finger on the issue, basically
What I want is for an outside public IP x.x.x.x to be natted to an internal IP 192.168.0.14, over port 80 and 443
So, address objects have been created
name x.x.x.x asw2_ext
name 192.168.0.14 calendars.blah.net
I have then created the access-list rules
access-list outside_access_in permit tcp any host asw2_ext eq www
access-list outside_access_in permit tcp any host asw2_ext eq https
and the following one-to-one static NAT entry has been created
static (inside,outside) asw2_ext calendars.blah.net netmask 255.255.255.255 0 0
So this should work, the I have checked with him, he can get to it over http but nothing is happening over https.
I have also done a port scan online, it can see http open but not https for the public IP.
I have asked him to verify any other services on this firewall which I could check to see if they have a similar set-up, there are a few similar ones which also use http and https ports, but for outside/inside details, but apart from that I cant see anything else which could be causing it.
Would there be anything else required apart from the above? what would be the best way to debug why http would be working, but not https?
I am trying to set-up a static one-to-one NAT but it only seems half working, I cant quite put my finger on the issue, basically
What I want is for an outside public IP x.x.x.x to be natted to an internal IP 192.168.0.14, over port 80 and 443
So, address objects have been created
name x.x.x.x asw2_ext
name 192.168.0.14 calendars.blah.net
I have then created the access-list rules
access-list outside_access_in permit tcp any host asw2_ext eq www
access-list outside_access_in permit tcp any host asw2_ext eq https
and the following one-to-one static NAT entry has been created
static (inside,outside) asw2_ext calendars.blah.net netmask 255.255.255.255 0 0
So this should work, the I have checked with him, he can get to it over http but nothing is happening over https.
I have also done a port scan online, it can see http open but not https for the public IP.
I have asked him to verify any other services on this firewall which I could check to see if they have a similar set-up, there are a few similar ones which also use http and https ports, but for outside/inside details, but apart from that I cant see anything else which could be causing it.
Would there be anything else required apart from the above? what would be the best way to debug why http would be working, but not https?